Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-05-30 | CVE-2018-11435 | Information Exposure vulnerability in Libmobi Project Libmobi 0.3 The mobi_decompress_huffman_internal function in compression.c in Libmobi 0.3 allows remote attackers to cause information disclosure (read access violation) via a crafted mobi file. | 6.5 |
| 2018-05-29 | CVE-2017-16062 | Information Exposure vulnerability in Node-Tkinter Project Node-Tkinter node-tkinter was a malicious module published with the intent to hijack environment variables. | 7.5 |
| 2018-05-29 | CVE-2017-16061 | Information Exposure vulnerability in Tkinter Package Tkinter tkinter was a malicious module published with the intent to hijack environment variables. | 7.5 |
| 2018-05-29 | CVE-2017-16047 | Information Exposure vulnerability in Mysqljs Project Mysqljs mysqljs was a malicious module published with the intent to hijack environment variables. | 7.5 |
| 2018-05-29 | CVE-2018-1369 | Information Exposure vulnerability in IBM Security Guardium BIG Data Intelligence 3.1 IBM Security Guardium Big Data Intelligence (SonarG) 3.1 stores sensitive information in URL parameters. | 3.7 |
| 2018-05-29 | CVE-2017-1768 | Information Exposure vulnerability in IBM Security Guardium BIG Data Intelligence 3.1 IBM Security Guardium Big Data Intelligence (SonarG) 3.1 generates an error message that includes sensitive information about its environment, users, or associated data. | 4.3 |
| 2018-05-28 | CVE-2018-10732 | Information Exposure vulnerability in Dataiku Data Science Studio The REST API in Dataiku DSS before 4.2.3 allows remote attackers to obtain sensitive information (i.e., determine if a username is valid) because of profile pictures visibility. | 5.3 |
| 2018-05-28 | CVE-2018-11517 | Information Exposure vulnerability in Myscada Mypro 7.0 mySCADA myPRO 7 allows remote attackers to discover all ProjectIDs in a project by sending all of the prj parameter values from 870000 to 875000 in t=0&rq=0 requests to TCP port 11010. | 5.3 |
| 2018-05-28 | CVE-2018-11508 | Information Exposure vulnerability in multiple products The compat_get_timex function in kernel/compat.c in the Linux kernel before 4.16.9 allows local users to obtain sensitive information from kernel memory via adjtimex. | 5.5 |
| 2018-05-26 | CVE-2018-11505 | Information Exposure vulnerability in Werewolf Online Project Werewolf Online 0.8.8 The Werewolf Online application 0.8.8 for Android allows attackers to discover the Firebase token by reading logcat output. | 7.5 |